BitMaster/LEMPer
1
0
Fork 0
mirror of https://github.com/joglomedia/LEMPer.git synced 2026-04-11 23:48:19 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
e535452e9ec1ed3cb53038dfa24f3960ea94d765
LEMPer/scripts/install_letsencrypt.sh
joglomedia 8b810d2054 Update
2019-07-15 00:00:59 +07:00

82 lines
2.7 KiB
Bash
Executable File
Raw Blame History

#!/usr/bin/env bash
# Certbot Let's Encrypt installer
# Min. Requirement : GNU/Linux Ubuntu 14.04
# Last Build : 12/07/2019
# Author : ESLabs.ID (eslabs.id@gmail.com)
# Since Version : 1.0.0
# Include decorator
if [ "$(type -t run)" != "function" ]; then
BASEDIR=$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )
. ${BASEDIR}/helper.sh
fi
# Make sure only root can run this installer script
if [ $(id -u) -ne 0 ]; then
error "You need to be root to run this script"
exit 1
fi
function init_certbotle_install() {
echo ""
echo "Welcome to Certbot Let's Encrypt Installation..."
echo ""
while [[ $INSTALL_CERTBOT != "y" && $INSTALL_CERTBOT != "n" ]]; do
read -p "Do you want to install Certbot Let's Encrypt? [y/n]: " -e INSTALL_CERTBOT
done
if [[ "${INSTALL_CERTBOT}" == Y* || "${INSTALL_CERTBOT}" == y* ]]; then
echo -e "\nInstalling Certbot Let's Encrypt client..."
run add-apt-repository -y ppa:certbot/certbot >> lemper.log 2>&1
run apt-get -y update >> lemper.log 2>&1
run apt-get -y install certbot >> lemper.log 2>&1
# Add Certbot auto renew command to cron
#15 3 * * * /usr/bin/certbot renew --quiet --renew-hook "/bin/systemctl reload nginx"
EDITOR=nano
CRONCMD='15 3 * * * /usr/bin/certbot renew --quiet --renew-hook "/usr/sbin/service nginx reload -s"'
crontab -u root lemper.cron
crontab -l > lemper.cron
if ! grep -qwE "/usr/bin/certbot\ renew" lemper.cron; then
#echo "$croncmd" >> lemper.cron
cat >> lemper.cron <<EOL
# LEMPer Cronjob
# Certbot Auto-renew Let's Encrypt certificates
${CRONCMD}
EOL
crontab lemper.cron
#rm -f lemper.cron
fi
# Generate Diffie-Hellman parameters
if [ ! -f /etc/letsencrypt/ssl-dhparam-4096.pem ]; then
echo "Generating Diffie-Hellman parameters for enhanced security,"
echo "This is going to take a long time"
openssl dhparam -out /etc/letsencrypt/ssl-dhparam-2048.pem 2048 >> lemper.log 2>&1
openssl dhparam -out /etc/letsencrypt/ssl-dhparam-4096.pem 4096 >> lemper.log 2>&1
fi
if certbot --version | grep -q "certbot"; then
status "Certbot installed successfully."
else
warning "Something wrong with Certbot installation."
fi
fi
}
# Start running things from a call at the end so if this script is executed
# after a partial download it doesn't do anything.
if [[ -n $(which certbot) ]]; then
warning -e "\nCertbot Let's Encrypt already exists. Installation skipped..."
else
init_certbotle_install "$@"
fi
Reference in New Issue View Git Blame Copy Permalink